Confessions of the QSA: An Introduction to the Payment Card Industry Data Security Standard

 

As most in the industry know, a QSA must get certified by the PCI Security Standards Security Council to audit merchants for Payment Card Industry Data Security Standard (PCI DSS) compliance. Created in 2004 by major credit card brands, such as Visa and American Express, the council acts as a form of self-regulation.

So, how did Weaver become an expert on PCI, and what types of solutions does it offer its clients?

On this episode of Weaver: Beyond The Numbers, host Tyler Kern talked with Trip Hillman, Director of Cyber Security Services at Weaver, and Kyle Morris, Manager of IT at Advisory Services at Weaver. The trio dug into insights from Weaver’s Quality Security Assessor and explored how Weaver dove headfirst into PCI.

The PCI DSS applies to organizations that store, process, transmit or could affect the security of cardholder data. Companies that fall under this standard could do a variety of things, such as an annual self-assessment questionnaire, or bring in a third-party, independent QSA to do a full-blown report on compliance audit.

Morris is a QSA and started at Weaver about eight years ago. A few years into his career, they had a client, a service provider, start getting asked by their customers if they knew anything about PCI and the report on compliance. At the time, they hadn’t done anything with it, but decided to figure it out. That morphed into Weaver diving headfirst into PCI.

“We help people with self-assessment questionnaires or SAQs and everything from full-on ROCs for Fortune 50 Cloud Providers to small merchants to SaaS solutions,” Morris said.

Follow us on social media for the latest updates in B2B!

Image

Latest

AI data
Applied Digital Ellendale AI Data Center: October 2024 Update
November 5, 2024

In October, Applied Digital’s Ellendale AI Data Center project in North Dakota continues to make remarkable strides. Following September’s progress on the utility substation and foundational infrastructure, we now see further development in the facility’s three-tiered structure. Spanning 363,000 square feet, this facility is designed to support a substantial 100MW IT load, positioning it…

Read More
breaking barriers
Empowering Resilience: Breaking Barriers
November 5, 2024

In this episode, Justice Sanders shares his inspiring journey of overcoming adversity, battling imposter syndrome, and transforming his life through the pursuit of a GED. Hosted by GED Testing Service, the podcast explores the emotional and psychological hurdles faced by non-traditional learners and highlights the power of resilience, self-belief, and continuous growth. Key Discussion Points…

Read More
LodgIQ
Olde Mill Inn Leveraging Maestro All-In-One PMS and LodgIQ AI Integration to Wow Guests, Drive Revenues
November 5, 2024

The popular central New Jersey wedding and social event destination is making data-driven decisions, maximizing its revenue potential, and connecting with guests in more strategic ways. MARKHAM, Ontario, Nov. 5, 2024 — Maestro, the hotel industry’s leading Web Browser-based cloud and on-premises All-In-One property-management system, teamed with preeminent commercial strategy platform LodgIQ to improve operations,…

Read More
luxury residential technology
Kaleidoscape Takes Luxury Residential Technology to New Heights
November 4, 2024

Home automation and luxury residential technology are reaching new heights of sophistication. Previously centered on isolated home theater rooms, this industry now integrates smart features and high-quality audiovisual setups throughout entire homes. In a market once dominated by high-cost, integrator-managed installations, shifts toward accessible DIY technology and e-commerce have introduced new options for consumers….

Read More